[Fusionforge-general] Project unix group: what permissions does it grant?

Sylvain Beucler - Inria sylvain.beucler at inria.fr
Tue Mar 17 15:40:06 CET 2015


Hi,

When unifying https and unix permissions, I made the assumption that :
- group 'projname' : read-only access on repos
- group 'scm_projname' : grants read+write access on repos

However, I made some tests and the code currently assumes that :
- group 'projname' : direct project member (whatever the RBAC privs)
- group 'scm_projname' : read+write access on repos
Consequently "read-only access" is currently broken.


Should I go ahead and fix the code to conform to my first assumption 
(projname=read-only ?)

Or should rename the groups entirely for clarity ?
- projname_ro
- projname_rw
- (and ditch "projname" for simplicity)
- (and re-chgrp group homedirs)

WDYT?

Cheers!
Sylvain



More information about the Fusionforge-general mailing list